Tag: supply chain vulnerability
13 articles

AI Models Vulnerable to Poisoning for Under $100
A cybersecurity expert recently discovered that AI models can be easily manipulated to behave maliciously, with a backdoor installable in just an hour for under $100. This startling vulnerability was uncovered through a simple fine-tuning test that quickly escalated into a full-blown security threat.

AI Browsers Exposed to Credential-Leaking BioShocking Attack
A shocking new attack has been discovered that can trick AI browsers and assistants into leaking sensitive user credentials, with six popular agents already proven vulnerable. This sneaky tactic, called BioShocking, uses a clever game-like approach to bypass safety protocols and get agents to cough up personal info.

Weak Onboarding Passwords Expose Corporate Systems to Unnecessary Risk
Poorly handled onboarding passwords can put entire corporate systems at risk, exposing sensitive data to potential breaches - and it's a problem that's easier to prevent than you think. Temporary passwords sent via email or SMS can be intercepted, forwarded, or compromised, creating an open invitation for attackers.

Microsoft Fixes Firmware Flaw in Surface Devices That Allowed Bricking via Single Packet
A security researcher discovered that a routine attempt to adjust the backlight on a Surface laptop turned into a nightmare when Microsoft Copilot generated a Python script that overwrote the embedded controller firmware, rendering the machine useless. The script sent faulty commands to the device's microcontroller, highlighting a serious firmware flaw that Microsoft has now fixed.

OpenClaw AI Agent Exposes Sensitive Data to Hidden Attacks
A critical vulnerability in OpenClaw AI, known as OpenClaw 2026.4.23, allowed hackers to hide malicious instructions within shared contacts, vCards, or location pins, which the AI agent then obediently followed. This shocking security flaw was recently patched, but highlights the importance of staying vigilant against emerging threats.

CISA Warns of Exploited Magento Extension Flaw
A critical flaw in the Mirasvit Full Page Cache Warmer Magento extension, tracked as CVE-2026-45247, has been exploited by hackers, allowing them to execute remote code without authentication. This vulnerability, rated 9.8 on the CVSS scale, enables attackers to wreak havoc by supplying a malicious PHP object in the CacheWarmer cookie.

Microsoft 365 Android Apps Expose Account Tokens Due to Debug Flag Oversight
A single line of code, "setIsDebugMode(true)," inadvertently left in multiple Microsoft 365 Android apps, created a gaping security hole that allowed other apps on the same phone to access sensitive account tokens without user permission. This tiny oversight, discovered by Enclave's Yanir Tsarimi and Ofek Levin, exposed users to potential security risks.

Palo Alto Networks Warns of Active Exploitation of GlobalProtect Flaw
Palo Alto Networks has issued a warning about a critical GlobalProtect flaw, CVE-2026-0257, that is being actively exploited, allowing attackers to bypass security restrictions and establish unauthorized VPN connections. This vulnerability affects specific PAN-OS and Prisma Access deployments with certain configurations.

Ransomware Negotiator Exposed as Insider for Gang
A shocking case reveals a glaring weakness in ransomware incident response: organizations often put blind trust in single negotiators, leaving them vulnerable to exploitation by attackers. This human error, not a technical bug, can turn a trusted role into a gateway for cybercriminals.

Unpatched Flaw Exposes Hugging Face LeRobot to Remote Code Execution
A critical, unpatched vulnerability in Hugging Face's LeRobot platform, rated CVSS 9.3, allows hackers to remotely execute code by exploiting Python's insecure pickle format, putting users at risk of devastating attacks. This flaw enables unauthenticated attackers to gain control by deserializing malicious data sent over unsecured channels.

CISA Warns of Persistent Cisco Backdoor on Federal Networks
The Cybersecurity and Infrastructure Security Agency (CISA) has detected a sneaky backdoor, dubbed Firestarter, lurking on federal networks, which may not have been fully eliminated by Cisco's recent patches. Federal agencies are now on high alert, urged to hunt for this stealthy malware that could compromise their networks.

Grinex Hack Exposes Crypto Vulnerabilities
A shocking $13.7 million theft has forced Kyrgyzstan-based crypto exchange Grinex to suspend operations, with the company making the explosive claim that Western intelligence agencies were behind the hack. But with more questions than answers, what's really going on?

Iranian Campaign Targets 3,900 Devices in US Infrastructure
A recent Iranian cyber campaign has set its sights on a staggering 3,900 exposed devices in US infrastructure, putting energy, water, and government services at risk. This large-scale threat is a clear warning sign that these critical systems may be vulnerable to attack.